News
Security checks across malware telemetry and agentic risk
Overview
This news-personalization skill is transparent and limited to local preference memory, with no executable code or hidden data access.
Install this if you are comfortable with it keeping a local news profile and engagement history under ~/news/. Review or edit those files if your interests change or if you do not want certain preferences reused; only install the related suggested skills after explicit confirmation.
SkillSpector
By NVIDIA
Vulnerability Patterns
- Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
- Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
- Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
- Supply ChainUnpinned Dependencies, External Script Fetching, Obfuscated Code
- Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
VirusTotal
64/64 vendors flagged this skill as clean.